Rewards Hub Moonlock Lab and Annex Security have identified two new techniques used by crypto hackers in recent ClickFix attacks. The first involves impersonating venture capital firms like SolidBit, MegaBit, and Lumax Capital on LinkedIn to lure targets into fake Zoom or Google Meet pages. Victims are then tricked into executing malicious commands via a fake Cloudflare verification.
The second method involves hijacking the Chrome extension QuickLens, which reportedly has around 7,000 users. After changing ownership, hackers push a malicious script version to initiate ClickFix attacks and steal wallet data and mnemonic phrases. ClickFix attacks have increased over the past year, exploiting the manual execution of malicious payloads to bypass traditional security measures.
New ClickFix Attack Techniques Target Crypto Users
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.